package com.chalk.common.util;

import cn.hutool.json.JSONObject;
import cn.hutool.json.JSONUtil;
import org.apache.commons.codec.binary.Base64;

import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import java.security.AlgorithmParameters;
import java.security.Key;
import java.security.Security;

/**
 * @author xiaoqiang
 * @Description
 * @date 2019/5/7 15:44
 */
public class AES {
    // 算法名
    public static final String KEY_NAME = "AES";
    // 加解密算法/模式/填充方式
    // ECB模式只用密钥即可对数据进行加密解密，CBC模式需要添加一个iv
    public static final String CIPHER_ALGORITHM = "AES/CBC/PKCS7Padding";

    /**
     * 微信 数据解密<br/>
     * 对称解密使用的算法为 AES-128-CBC，数据采用PKCS#7填充<br/>
     * 对称解密的目标密文:encrypted=Base64_Decode(encryptData)<br/>
     * 对称解密秘钥:key = Base64_Decode(session_key),aeskey是16字节<br/>
     * 对称解密算法初始向量:iv = Base64_Decode(iv),同样是16字节<br/>
     *
     * @param encrypted 目标密文
     * @param session_key 会话ID
     * @param iv 加密算法的初始向量
     */
    public static JSONObject wxDecrypt(String encrypted, String session_key, String iv) {
        String json = null;
        byte[] encrypted64 = Base64.decodeBase64(encrypted);
        byte[] key64 = Base64.decodeBase64(session_key);
        byte[] iv64 = Base64.decodeBase64(iv);
        byte[] data;
        try {
            init();
            json = new String(decrypt(encrypted64, key64, generateIV(iv64)));
        } catch (Exception e) {
            System.out.println("解密微信手机号失败:" + e.getMessage());
        }
        return JSONUtil.parseObj(json);
    }

    /**
     * 初始化密钥
     */
    public static void init() throws Exception {
        Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
        KeyGenerator.getInstance(KEY_NAME).init(128);
    }

    /**
     * 生成iv
     */
    public static AlgorithmParameters generateIV(byte[] iv) throws Exception {
        // iv 为一个 16 字节的数组，这里采用和 iOS 端一样的构造方法，数据全为0
        // Arrays.fill(iv, (byte) 0x00);
        AlgorithmParameters params = AlgorithmParameters.getInstance(KEY_NAME);
        params.init(new IvParameterSpec(iv));
        return params;
    }

    /**
     * 生成解密
     */
    public static byte[] decrypt(byte[] encryptedData, byte[] keyBytes, AlgorithmParameters iv)
            throws Exception {
        Key key = new SecretKeySpec(keyBytes, KEY_NAME);
        Cipher cipher = Cipher.getInstance(CIPHER_ALGORITHM);
        // 设置为解密模式
        cipher.init(Cipher.DECRYPT_MODE, key, iv);
        return cipher.doFinal(encryptedData);
    }
    /**
     * 解密用户信息
     * @param //encryptedData
     * @param //sessionKey
     * @param //iv
     * @return
     */
//	public static JSONObject getUserInfo(String encryptedData,String sessionKey,String iv){
//		// 被加密的数据
//		byte[] dataByte = Base64.decode(encryptedData);
//		// 加密秘钥
//		byte[] keyByte = Base64.decode(sessionKey);
//		// 偏移量
//		byte[] ivByte = Base64.decode(iv);
//		try {
//			// 如果密钥不足16位，那么就补足.  这个if 中的内容很重要
//			int base = 16;
//			if (keyByte.length % base != 0) {
//				int groups = keyByte.length / base + (keyByte.length % base != 0 ? 1 : 0);
//				byte[] temp = new byte[groups * base];
//				Arrays.fill(temp, (byte) 0);
//				System.arraycopy(keyByte, 0, temp, 0, keyByte.length);
//				keyByte = temp;
//			}
//			// 初始化
//			Security.addProvider(new BouncyCastleProvider());
//			Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding","BC");
//			SecretKeySpec spec = new SecretKeySpec(keyByte, "AES");
//			AlgorithmParameters parameters = AlgorithmParameters.getInstance("AES");
//			parameters.init(new IvParameterSpec(ivByte));
//			cipher.init( Cipher.DECRYPT_MODE, spec, parameters);// 初始化
//			byte[] resultByte = cipher.doFinal(dataByte);
//			if (null != resultByte && resultByte.length > 0) {
//				String result = new String(resultByte, "UTF-8");
//				return JSONUtil.parseObj(result);
//			}
//		} catch (Exception e) {
//			log.error(e.getMessage(), e);
//		}
//		return null;
//	}

//    private static JSONObject decryptS5(String sSrc, String sKey, String ivParameter) {
//        try {
//            BASE64Decoder decoder = new BASE64Decoder();
//            byte[] raw = decoder.decodeBuffer(sKey);
//            SecretKeySpec skeySpec = new SecretKeySpec(raw, "AES");
//            IvParameterSpec iv = new IvParameterSpec(decoder.decodeBuffer(ivParameter));
//            Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
//            cipher.init(Cipher.DECRYPT_MODE, skeySpec, iv);
//            byte[] myendicod = decoder.decodeBuffer(sSrc);
//            byte[] original = cipher.doFinal(myendicod);
//            String originalString = new String(original, "UTF-8");
//            return JSONUtil.parseObj(originalString);
//        } catch (Exception ex) {
//            System.out.println("--------------------解密错误信息------------------------"+ex.getMessage());
//            return null;
//        }
//    }
}
